7 matches found
EUVD-2016-9353
Malware in sbrugna...
The vulnerability in the BookReader extension of the Yandex Browser allows a attacker to perform XSS attacks.
The vulnerability of the BookReader extension in the Yandex Browser exists due to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...
Yandex Browser for desktop cross-site scripting vulnerability
Yandex Browser for desktop is a desktop version of the Russian company Yandex. A cross-site scripting vulnerability exists in Yandex Browser BookReader in versions of Yandex Browser for desktop prior to 16.6. A remote attacker can exploit this vulnerability to execute arbitrary Javascript code...
CVE-2016-8505
XSS in Yandex Browser BookReader in Yandex browser for desktop for versions before 16.6. could be used by remote attacker for evaluation arbitrary javascript code...
Code injection
XSS in Yandex Browser BookReader in Yandex browser for desktop for versions before 16.6. could be used by remote attacker for evaluation arbitrary javascript code...
CVE-2016-8505
XSS in Yandex Browser BookReader in Yandex browser for desktop for versions before 16.6. could be used by remote attacker for evaluation arbitrary javascript code...
CVE-2016-8505
Vulnerability summary (CVE-2016-8505) : A cross-site scripting flaw in Yandex Browser for desktop, specifically in BookReader, affects versions prior to 16.6. A remote attacker could execute arbitrary JavaScript in the context of BookReader. The issue is tied to the BookReader component of Yandex...